PRODUCTS PURCHASE SUPPORT COMPANY PRESS
     
SpyWall Remote Management

Q:  Is it possible to restrict enumeration of machines to a specific subnet?

A.  Yes. To restrict the enumeration to a specific subnet, enter the target subnets "Management Options --> Enumerate Network" tab. During the enumeration process, any machines with IP address outside that range will not be shown.

Q:  How do I remotely install SpyWall client on a large number of machines?

A. Trlokom central manager will let you remotely install or upgrade SpyWall clients via the ADMIN$ share. Basic steps are:

  1. Enumerate network (from "Enumerate network" tab)
  2. Download SpyWall client (from "Downloads" tab)
  3. Select the PC (from "Network & Machines" textbox)
  4. Install (from "SpyWall client --> Software & Definitions")

Q:  How do I remotely install SpyWall client via SMS?

A.  You can run a script. Syntax is given below.
msiexec.exe /qn /i SpyWall.msi IS_REMOTE="<0 or 1>" MANAGER_LIST="<ip addres or name separated by spaces>"

The following describes the command line parameters and their values. IS_REMOTE=<0 or 1>

This is an optional parameter which is used to tell the installer if installation is local or remote. 0 is local, 1 for remote. Specify 1 with SMS.

MANAGER_LIST="<ip address or name separated by spaces>"

Q:  I am not able to remotely manage or install SpyWall clients?

A.  There are a number of reasons why you may not be able to remotely manage clients:

  • ADMIN$ share is not enabled. Use the windows explorer and enter \\machine\ADMIN$ to check if you can connect to the ADMIN$ share. If you don’t get a login prompt then the ADMIN$ share is not enabled
  • If you have a personal firewall on the remote machine, it may block the SpyWall stub service from making a network connection
  • If you have simple file sharing enabled on Windows XP machines, the remote management will not work via the ADMIN$ share. Disable simple file sharing
  • You may have another network connection to that machine using a different username and password. Close that connection and try again.

Q:  How can I remotely edit SpyWall client policies?

A.  If you can connect to the PC via the ADMIN$ share, use the Trlokom central manager to "pull policy" the SpyWall policies (SpyWall client --> Remote Policy Editor) edit them, and "push policy" the modified policies back to the client.
Please note that if the client is member of a profile, then during the next polling by TCM, it will get the profile policy.

Q:  I am unable to remotely manage a PC running XP home edition?

A.  In SpyWall’s "Configuration --> SpyWall Settings" tab and under management options, check the "Enable remote management" option and add the name or IP address of the manager to the list.

Q:  I am running SP2 on an XP machine and am unable to remotely install or manage SpyWall?

A.  Default settings of windows firewall or internet connection firewall (ICF) prevents remote management. To overcome this: ul>

  • ICF exceptions should have "File and Printer Sharing" checked.
  • ICF exception should have another rule for application "C:\WINDOWS\trlrm\RMHSvc.exe" to access network.

    Q:  How can I remotely scan a machine for spyware?

    A. If you can connect to the machine via the ADMIN$ share, use the Trlokom central manager to remotely scan the machine.

    1. Select the PC (from "Network & Machines" textbox)
    2. Click on "Scan (from "SpyWall client --> Scan")

    Q:  How do I upgrade the SpyWall software on local machines?

    A. The SpyWall client software can be updated at the time of polling of the machines, or it can be pushed. Please refer to the section on software management of clients:

    1. Select the machine(s) or workgroup/domain (from "Network & Machines")
    2. Click "Upgrade" (from "SpyWall client → Software & Definitions")

    Q:  How do I update the spyware definitions on the local clients?

    A. SpyWall central manager can be configured to update the spyware definitions at the clients at the time of daily polling of the clients.

    1. Select the PC(s) or workgroup/domain (from "Network & Machines" textbox)
    2. Click on "Update" (from "SpyWall client --> Software & Definitions")

    Q:  Can I change SpyWall policies for the entire group or domain?

    A. Yes. Create a profile and add the group or domain to that group. Profile policies will be pushed to the members.

    Q:  Can I view long term history of a user’s Web usage?

    A.  Yes. SpyWall stores 60-day history that can be viewed from the "SpyWall Client --> Monitor" tab of the TCM.

    Q:  How do I create a profile to manage multiple clients?

    A.  In the "SpyWall --> Profiles" tab, click on the "Add" button to create a new profile.

    Q: How do I add members to a profile?

    A.  In the "SpyWall --> Profiles" tab, click on the "Members" tab. Click on "Add" button to add one member at a time and click on "Add multiple" to add entire domains or a group of members at the same time.

    Q:  I am unable to remotely install client licenses?

    A.  There are two possible reasons for it. First, you may have exceeded the total number of client licenses you are authorized to install. Second, you may have changed your password at Trlokom’s website. In that case, please log in at Trlokom’s website to download and install the license files again.

    Q: Can I remotely run the rootkit scan?

    A.  No. Currently there is no provision for remotely scanning a PC for rootkits. We expect to make this feature available in the near future.

    •  

    		   
      Home » Support » FAQ » SpyWall Remote Management Account  |  Cart   

    Copyright © 2004-06 Trlokom, Inc.